Description:
The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.
Security Fix(es):
* gnutls: Heap buffer overflow in handshake with no_renegotiation alert sent (CVE-2020-24659)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* gnutls: Add self-tests for implemented KDF algorithms and CMAC (BZ#1903037)
Updated packages:
-
gnutls-3.6.14-7.el8_3.i686.rpm
-
gnutls-3.6.14-7.el8_3.x86_64.rpm
-
gnutls-c++-3.6.14-7.el8_3.i686.rpm
-
gnutls-c++-3.6.14-7.el8_3.x86_64.rpm
-
gnutls-dane-3.6.14-7.el8_3.i686.rpm
-
gnutls-dane-3.6.14-7.el8_3.x86_64.rpm
-
gnutls-devel-3.6.14-7.el8_3.i686.rpm
-
gnutls-devel-3.6.14-7.el8_3.x86_64.rpm
-
gnutls-utils-3.6.14-7.el8_3.x86_64.rpm